Information Technology Security Director - INFORMATION TECHNOLOGY

Department:  Information Technology

Pay:  Salary Range: $93,196 - $139,644 annually, commensurate with education and experience. 

Work Schedule: Monday - Friday, 8:00 am to 5:00 pm 

The IT Security Director is responsible for leading the county’s security program to set the IT enterprise security vision as well as safeguard information systems and data. This includes establishing and implementing comprehensive security policies, ensuring compliance with applicable regulations, and maintaining effective coordination with internal and external agencies. This role will oversee the IT security team, providing technical leadership, guidance, employee development.  The IT Security Director will also be expected to function as a working manager who is able to provide “hands on” assistance to the county’s security efforts. Reporting to the CIO, this position will make security recommendations to county management to ensure alignment exists between business objectives and information security best practices

Lead IT security operations including detecting, investigating, and responding to incidents/threats

• Supervise IT Security staff and oversee daily security operations.
• Coordinate and monitor security activities to ensure effective, efficient protection.
• Lead and conduct investigations of security breaches or incidents and implement corrective actions.
• Manage deployment, maintenance, and optimal performance of security technologies.
• Prepare and manage the annual security budget

Implement comprehensive security strategy and policies to provide safeguards against threats

• Develop a comprehensive, cybersecurity strategy to safeguard data and systems from current and emerging threats.
• Create, implement, and enforce security policies, protocols, and procedures.
• Build a roadmap for adopting and integrating modern defense approaches.
• Evaluate, refine, and manage key risk and performance indicators.
• Implement risk management and incident response plans to ensure effective handling of security breaches and cyber incidents.

Advocate for robust security practices across the County and with external agencies

• Promote cybersecurity awareness and provide training on best practices.
• Collaborate with leaders to integrate IT security policies and best practices into strategies and processes.
• Participate in business continuity and disaster recovery planning and exercises.
• Deliver regular updates on security posture, emerging threats, and the effectiveness of County security measures.
• Serve as an active, non-voting member of the Technology Review Board.
• Act as the County liaison with law enforcement, emergency management, and regulatory agencies during investigations or critical incidents.

Assess and mitigate potential risks to the County’s assets and operations

• Stay current on industry trends, tools, and technologies, recommending improvements as needed.
• Lead periodic risk assessments and security audits for compliance (PCI, HIPAA, CJIS) and recommend mitigation strategies.
• Prepare and present risk assessments of proposed business applications and technologies to the Technology Review Board.

Minimum Qualifications: Ten (10) years of IT experience with six (6) years of information security with progressively responsible experience in business-related technology solutions. Up to two years of experience may be substituted with education that provides applicable knowledge and skills.  Two (2) years of supervisory responsibilities. Per Sedgwick County policy, this is a driving level position that requires a valid U.S. driver’s license without restrictions and current proof of automobile insurance.

Preferred Qualifications:  Ten (10) years of information security experience. Four (4) years of information security leadership experience. Bachelor’s degree from an accredited college or university in Computer Science, Cybersecurity, or a related field. CISSP, CISM, CRISC.

It is the policy of Sedgwick County not to discriminate in its programs or services provided to the general public, including employment and all other activities, on the basis of race, color, religion, national origin, citizenship, sex, age, disability, veteran status or any other similarly protected status. Sedgwick County is committed to making the application, interview, and pre-employment testing process accessible to persons with disabilities. If you wish to volunteer information regarding any special assistance you may need, please notify Human Resources by phone at (316) 660-7050, TDD (Kansas Relay at 711 or 800-766-3777). Do not use this phone number for employment questions. This number is provided only for those requiring ADA assistance. You will be contacted should the department feel that you are a qualified candidate.